ALSA-2023:5244

See a problem?

Source

https://errata.almalinux.org/8/ALSA-2023-5244.html

Import Source

https://github.com/AlmaLinux/osv-database/blob/master/advisories/almalinux8/ALSA-2023:5244.json

JSON Data

https://api.osv.dev/v1/vulns/ALSA-2023:5244

Related

Published

2023-09-19T00:00:00Z

Modified

2023-10-03T18:43:07Z

Summary

Important: kernel security, bug fix, and enhancement update

Details

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

kernel: ipvlan: out-of-bounds write caused by unclear skb->cb (CVE-2023-3090)
kernel: UAF in nftables when nftsetlookup_global triggered after handling named and anonymous sets in batch requests (CVE-2023-3390)
kernel: net/sched: clsfw component can be exploited as result of failure in tcfchange_indev function (CVE-2023-3776)
kernel: netfilter: use-after-free due to improper element removal in nftpipaporemove() (CVE-2023-4004)
kernel: nftables: stack-out-of-bounds-read in nftbyteorder_eval() (CVE-2023-35001)
kernel: clsflower: out-of-bounds write in flsetgeneveopt() (CVE-2023-35788)
kernel: bluetooth: Unauthorized management command execution (CVE-2023-2002)
hw: amd: Cross-Process Information Leak (CVE-2023-20593)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

low memory deadlock with md devices and external (imsm) metadata handling - requires a kernfs notification backport (BZ#2208540)
Intel 8.9 BUG, SPR EMR FHF ACPI: Fix system hang during S3 wakeup (BZ#2218025)
OCS 4.8, cephfs kernel crash: mdsdispatch cephhandle_snap unable to handle kernel NULL (BZ#2218271)
stgmac: tx-checksum offload on vlan is not consistent with stgmac interface (BZ#2219907)
refcountt overflow often happens in memcgroupidget_online() (BZ#2221010)
avoid unnecessary page fault retires on shared memory types (BZ#2221100)
enable conntrack clash resolution for GRE (BZ#2223542)
ice: avoid bonding causing auxiliary plug/unplug under RTNL lock (BZ#2224515)
libceph: harden msgr2.1 frame segment length checks [8.x] (BZ#2227073)
Important iavf bug fixes July 2023 (BZ#2228161)
i40e error: Cannot set interface MAC/vlanid to 1e:b7:e2:02:b1:aa/0 for ifname ens4f0 vf 0: Resource temporarily unavailable (BZ#2228163)
oops on cifs_mount due to null tcon (BZ#2229128)
iptables argument "--suppl-groups" in extension "owner" does not work in AlmaLinux8 (BZ#2229715)
Hyper-V AlmaLinux 8: incomplete fctransport implementation in storvsc causes null dereference in fctimed_out() (BZ#2230743)
Withdrawal: GFS2: could not freeze filesystem: -16 (BZ#2231825)
AlmaLinux 8 Hyper-V: Excessive hvstorvsc driver logging with srbstatus SRBSTATUSINTERNAL_ERROR (0x30) (BZ#2231988)
AlmaLinux-8: crypto: rng - Fix lock imbalance in cryptodelrng (BZ#2232215)
Intel 8.9 iavf: Driver Update (BZ#2232399)
Hyper-V AlmaLinux-8 hvstorvsc driver logging excessive storvsclog events for storvsconio_completion() function (BZ#2233227)

Enhancement(s):

Intel 8.9 FEAT, EMR perf: Add EMR CPU PMU support (BZ#2230152)
Intel 8.9 FEAT, SPR EMR power: Add uncore frequency control driver (BZ#2230158)
Intel 8.9 FEAT EMR perf: RAPL PMU support on EMR (BZ#2230162)

References

Affected packages

AlmaLinux:8 / bpftool

Package

Name: bpftool

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-477.27.2.el8_8

AlmaLinux:8 / kernel

Package

Name: kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-477.27.2.el8_8

AlmaLinux:8 / kernel-abi-stablelists

Package

Name: kernel-abi-stablelists

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-477.27.2.el8_8

AlmaLinux:8 / kernel-core

Package

Name: kernel-core

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-477.27.2.el8_8

AlmaLinux:8 / kernel-cross-headers

Package

Name: kernel-cross-headers

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-477.27.2.el8_8

AlmaLinux:8 / kernel-debug

Package

Name: kernel-debug

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-477.27.2.el8_8

AlmaLinux:8 / kernel-debug-core

Package

Name: kernel-debug-core

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-477.27.2.el8_8

AlmaLinux:8 / kernel-debug-devel

Package

Name: kernel-debug-devel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-477.27.2.el8_8

AlmaLinux:8 / kernel-debug-modules

Package

Name: kernel-debug-modules

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-477.27.2.el8_8

AlmaLinux:8 / kernel-debug-modules-extra

Package

Name: kernel-debug-modules-extra

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-477.27.2.el8_8

AlmaLinux:8 / kernel-devel

Package

Name: kernel-devel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-477.27.2.el8_8

AlmaLinux:8 / kernel-doc

Package

Name: kernel-doc

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-477.27.2.el8_8

AlmaLinux:8 / kernel-headers

Package

Name: kernel-headers

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-477.27.2.el8_8

AlmaLinux:8 / kernel-modules

Package

Name: kernel-modules

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-477.27.2.el8_8

AlmaLinux:8 / kernel-modules-extra

Package

Name: kernel-modules-extra

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-477.27.2.el8_8

AlmaLinux:8 / kernel-tools

Package

Name: kernel-tools

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-477.27.2.el8_8

AlmaLinux:8 / kernel-tools-libs

Package

Name: kernel-tools-libs

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-477.27.2.el8_8

AlmaLinux:8 / kernel-tools-libs-devel

Package

Name: kernel-tools-libs-devel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-477.27.2.el8_8

AlmaLinux:8 / kernel-zfcpdump

Package

Name: kernel-zfcpdump

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-477.27.2.el8_8

AlmaLinux:8 / kernel-zfcpdump-core

Package

Name: kernel-zfcpdump-core

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-477.27.2.el8_8

AlmaLinux:8 / kernel-zfcpdump-devel

Package

Name: kernel-zfcpdump-devel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-477.27.2.el8_8

AlmaLinux:8 / kernel-zfcpdump-modules

Package

Name: kernel-zfcpdump-modules

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-477.27.2.el8_8

AlmaLinux:8 / kernel-zfcpdump-modules-extra

Package

Name: kernel-zfcpdump-modules-extra

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-477.27.2.el8_8

AlmaLinux:8 / perf

Package

Name: perf

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-477.27.2.el8_8

AlmaLinux:8 / python3-perf

Package

Name: python3-perf

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.18.0-477.27.2.el8_8